Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7XZUDYF75b7w_RmYPIgel-lBHL0.roa
File: 7XZUDYF75b7w_RmYPIgel-lBHL0.roa (raw, json)
Hash identifier: fYLl1BxWYPDKreepSc7u/bijOtVis/syTphlU9Frgv8=
Subject key identifier: ED:76:54:0D:81:7B:E5:BE:F0:FD:19:98:3C:88:1E:97:E9:41:1C:BD
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01822089716029C26A8DD7CCEF141BC30106
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7XZUDYF75b7w_RmYPIgel-lBHL0.roa
Signing time: Thu 21 Jul 2022 11:34:14 +0000
ROA not before: Thu 21 Jul 2022 11:34:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60117
IP address blocks: 193.47.60.0/24 maxlen: 24
193.222.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:89:71:60:29:c2:6a:8d:d7:cc:ef:14:1b:c3:01:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 21 11:34:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed76540d817be5bef0fd19983c881e97e9411cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ab:da:5d:f1:04:aa:d9:ac:18:f2:17:28:e3:
c9:c0:7a:62:15:93:6b:58:ca:9b:1f:4d:4e:96:27:
bc:85:2b:9d:0d:cf:85:f6:1c:98:0d:ed:84:0a:0e:
f9:95:17:39:65:d2:40:a7:ca:76:e6:53:81:96:05:
e6:3c:d8:99:f3:fd:9f:d9:13:f3:cc:2c:81:13:97:
fe:86:a8:bb:82:49:e8:21:ca:ef:dd:86:3f:5c:65:
9c:06:78:6f:f5:c0:f9:74:ae:37:f6:83:59:5d:fb:
db:e9:90:31:0a:77:8d:20:c7:97:e6:a0:fd:8b:f3:
bb:41:c4:e4:1c:0f:8d:f8:79:97:ee:d8:17:28:d1:
d2:1f:fb:52:6d:4e:f0:a7:6f:da:4c:1a:4e:9a:6f:
01:8a:54:de:be:39:cd:08:96:cb:56:12:6a:1a:dc:
db:f0:93:55:b5:39:ae:da:c3:54:d2:b0:a7:1b:77:
58:b3:a0:b7:32:da:14:48:03:ca:4e:f5:3e:3d:ca:
0f:fc:98:aa:7e:8d:e6:77:46:79:dd:fe:e4:b5:8d:
23:42:91:2f:4d:d5:f5:3d:70:2f:77:98:84:5e:25:
71:02:0b:13:65:f6:5d:c0:6e:d2:a0:78:84:5c:bd:
82:18:f6:fe:4c:0f:f8:36:08:e8:41:40:17:79:74:
6c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:76:54:0D:81:7B:E5:BE:F0:FD:19:98:3C:88:1E:97:E9:41:1C:BD
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7XZUDYF75b7w_RmYPIgel-lBHL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.60.0/24
193.222.99.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:62:ef:45:b8:17:8e:20:ce:c1:ed:37:00:8c:17:a4:3d:28:
72:75:e9:b0:33:72:63:6b:14:2f:ea:8a:20:bc:c0:dd:d7:8d:
23:60:16:35:47:a4:4c:bc:58:cc:da:81:88:c8:bd:6b:10:9e:
18:f6:70:fc:c7:0b:d9:31:4c:99:39:5e:2f:41:fd:82:0d:21:
6a:ce:ad:55:22:77:e5:f3:2d:b7:fb:8b:54:09:d7:01:ef:04:
a9:b4:46:c8:25:1b:b1:65:54:9d:ea:f7:46:92:88:1f:75:27:
4e:20:24:ff:b5:33:3d:68:0c:45:ae:b3:16:a6:f7:34:5a:8b:
21:48:1c:00:96:e7:2e:7d:7b:cb:6d:d9:ec:28:d3:4c:84:99:
33:c3:7f:7e:a9:55:be:fb:8b:87:46:4d:5c:8c:c1:88:df:d0:
cd:12:16:50:c3:2b:47:ce:e1:ab:2c:32:b6:e1:22:6a:df:5e:
7d:e3:de:90:fa:00:c1:28:44:17:c7:f4:44:79:46:ea:ee:09:
e9:8a:9b:5d:fd:8a:38:b9:60:b0:7d:26:52:e5:e4:4d:bc:db:
87:e4:e9:57:3e:11:2a:6b:7e:00:c7:35:a2:f6:62:ca:9a:3a:
c2:e4:93:0a:0d:4b:34:05:ca:bd:e7:3f:94:2b:ed:1e:64:b9:
2b:86:ed:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-ams.rpki-client.org